commit 480e33bd9a8b0dcb3f6db109fa9820af5e2830c5
Author: Sagi Shnaidman <sshnaidm@redhat.com>
Date:   Fri Oct 2 03:28:37 2020 +0300

    Write selinux denials in separate file
    
    
    Use sova for discovering selinux denials and write
    them to selinux_denials.log
    Change-Id: I371b7f6bf3e72dbdf8dabbd6fac2bfe881358bc1

diff --git a/tasks/sova.yml b/tasks/sova.yml
index 1a68157..31fde4f 100644
--- a/tasks/sova.yml
+++ b/tasks/sova.yml
@@ -13,6 +13,12 @@
       "ironic-conductor": "/var/log/containers/ironic/ironic-conductor.log"
       syslog: "/var/log/journal.txt"
       logstash: "/var/log/extra/logstash.txt"
-      selinux: "/var/log/extra/denials.txt"
     result: "{{ ansible_user_dir }}/workspace/logs/failures_file"
     result_file_dir: "{{ ansible_user_dir }}/workspace/logs"
+
+- name: Run sova task
+  sova:
+    config: "{{ pattern_config }}"
+    files:
+      selinux: "/var/log/extra/denials.txt"
+    result: "{{ ansible_user_dir }}/workspace/logs/selinux_denials.log"